
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: jw8amXLsfBTJjHcZF/UV57jARgyJr2MopKEcTUbq4gw=
Subject key identifier: 14:BE:66:D8:AB:93:D4:BC:B7:05:35:8B:1E:76:97:81:8B:63:A2:E0
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019EB921120B75B1BDF7A576A54BF6E447C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 0878
Signing time: Fri 12 Jun 2026 00:00:12 +0000
Manifest this update: Fri 12 Jun 2026 00:00:12 +0000
Manifest next update: Sat 13 Jun 2026 00:00:12 +0000
Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: RG63tXKFboZDC3sqROFLda1SnHe2SZZI6yeuRszXnoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:12:0b:75:b1:bd:f7:a5:76:a5:4b:f6:e4:47:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jun 12 00:00:12 2026 GMT
Not After : Jun 13 00:00:12 2026 GMT
Subject: CN=14be66d8ab93d4bcb705358b1e7697818b63a2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:c5:7f:2c:78:90:b0:48:aa:2b:db:29:bc:
25:27:98:92:d2:d9:0c:60:13:d7:0c:83:42:34:3e:
66:6a:49:08:13:bf:2c:fe:c6:a2:07:c7:3d:59:16:
7a:27:4a:f4:3e:82:4e:22:e0:0a:3f:9c:4b:4e:c5:
03:ec:bf:8b:90:30:92:4d:e7:da:88:8e:8a:13:1e:
d5:ad:eb:42:88:5e:e2:e6:87:69:eb:29:a1:7b:a6:
dd:82:76:ba:a9:6c:dd:7e:3b:6c:c8:16:31:59:80:
21:07:1c:b4:9a:ea:ad:4a:35:d0:d9:65:c7:dd:16:
41:8b:bb:0b:89:b7:ac:03:84:0c:1c:17:90:2a:0f:
b3:44:bc:40:0b:8f:a9:43:1f:4e:f3:83:7e:57:9b:
00:12:e2:a6:51:e9:a3:e9:c7:52:16:03:29:62:ed:
b9:c0:f3:d1:89:75:9f:6b:fd:39:c6:41:ed:d6:97:
6a:5d:6b:e3:df:dc:3b:7e:35:dd:64:17:77:d1:f4:
46:40:f2:26:90:56:b2:82:1c:e3:89:88:ce:1a:e9:
81:de:d9:4a:93:2d:c5:88:10:47:4f:6a:47:72:10:
96:70:e1:6b:36:23:0f:b6:91:53:75:86:bc:9f:2f:
d2:cf:5e:26:98:4b:7f:ea:0c:40:ac:0c:94:87:0b:
49:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BE:66:D8:AB:93:D4:BC:B7:05:35:8B:1E:76:97:81:8B:63:A2:E0
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:58:62:c9:70:56:97:8f:39:22:5f:5a:93:ad:4a:4d:12:a7:
1f:b1:16:0a:07:9a:68:27:a1:a5:2b:0a:02:de:c2:f1:e9:58:
ac:16:5b:bb:22:0b:3c:de:b7:92:ec:3d:be:c6:f7:89:54:09:
ad:b2:52:34:f2:58:0c:14:17:8e:30:df:11:75:63:2d:64:54:
e9:4b:11:9a:92:a9:c0:8b:6b:c8:82:b5:25:11:f6:de:6b:c2:
ec:72:6b:6f:e9:81:98:73:32:59:77:74:0b:38:6e:a5:6f:c8:
6a:a6:16:f6:65:a2:26:f1:ed:e4:79:d6:9f:a4:ef:d0:6e:ab:
71:6e:47:04:04:19:f7:db:e4:88:a9:ef:bf:4e:ea:1c:fa:8c:
6b:3d:0f:2d:04:7a:b7:0f:29:19:47:34:5a:f2:2a:e8:5c:d5:
9e:9d:d5:a4:ce:b3:ed:94:3d:4b:38:42:24:19:28:e1:60:3b:
71:c8:da:fe:9c:5c:f4:0d:09:12:40:7c:fb:3d:82:99:99:35:
86:c1:2f:b9:a4:28:65:07:75:6f:8c:76:0e:d4:7e:21:2b:40:
11:f5:17:ad:81:5d:98:62:70:8c:0b:86:9a:30:a3:44:d5:0d:
f6:47:18:ec:0b:3c:06:e0:5e:9f:13:e7:3b:01:34:bc:7d:26:
0b:81:e4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:32:03 2026 by rpki-client